Board of Governors’ Office Data Security Incident
TALLAHASSEE – In recent weeks, sensitive information of a small subset of state university employees was inadvertently published on the Florida Has a Right to Know website due to a programming error. The information was immediately removed upon discovery of the error. Less than 2% of the State University System full-time employees were affected.
The Board of Governors retained a cybersecurity company to perform an analysis of the exposure. The company conducted a dark web search to ascertain if there was any evidence of actual data misuse. The investigation has concluded that there is no evidence that any of the information was misused. Moreover, we are evaluating additional actions to enhance the security of sensitive data.
To protect the affected employees from potential misuse of their information, we are offering a complimentary two-year identity protection service. This product helps detect possible misuse of personal information, provides identity theft insurance and identity theft resolution services.
“We regret that this incident has occurred, and we extend our deepest apologies,” said Marshall M. Criser, III, chancellor of the State University System of Florida. “We are committed to maintaining the privacy of personal information in our possession and have taken many precautions to strengthen the measures to safeguard this information.”
University staff not notified by the Board office were not affected by this exposure. For further questions regarding this incident, employees may call a dedicated help desk at (877) 890-9297. Please be prepared to provide engagement number B01191. Staff familiar with this incident will be available to respond to any questions.